Data Handling
This page details exactly what data PromptDeploy stores, what passes through our systems, and what never leaves GitHub.
What we store
| Data | Stored | Purpose |
|---|---|---|
| User accounts | Yes | Email, name, hashed password, OAuth provider IDs |
| Organisation details | Yes | Name, slug, billing email |
| Team memberships | Yes | User-to-organisation mapping with roles |
| Repository connections | Yes | Repo name, GitHub installation ID, default branch |
| Prompt configurations | Yes | File path, display name, description, deploy mode, metadata |
| Edit logs | Yes | Who edited, when, commit SHA, PR number (if applicable) |
| API keys | Yes | SHA-256 hash of token, name, prefix, last-used timestamp |
| Signal data | Yes | Prompt ID, sentiment (positive/negative), metadata, timestamp |
What we never store
| Data | Stored | Notes |
|---|---|---|
| Prompt file content | No | Fetched from GitHub on demand, sent to browser, never persisted |
| GitHub personal access tokens | No | We use GitHub App installation tokens (short-lived, auto-refreshing) |
| Full API keys | No | Only the SHA-256 hash is stored |
| Repository source code | No | We only access the specific files configured as prompts |
Data flow
Reading a prompt
Browser → PromptDeploy → GitHub API → PromptDeploy → Browser
The file content passes through our server but is not written to any database, cache, or log.
Saving a prompt (direct mode)
Browser → PromptDeploy → GitHub API (commit to default branch)
Saving a prompt (PR mode)
Browser → PromptDeploy → GitHub API (create branch, commit, open PR)
Encryption
- All traffic is encrypted in transit via TLS
- Passwords are hashed using bcrypt (via Devise)
- API keys are hashed using SHA-256
- Database connections use encryption in transit
Data retention
- Edit logs are retained indefinitely (they contain no prompt content)
- Signal data is retained indefinitely
- Revoked API keys remain in the database (marked inactive) for audit purposes
- Deleted repositories and prompt configs are removed from the database
Deleting your data
To delete all data associated with your account, contact support@promptdeploy.com. We'll remove your account, memberships, and all associated organisation data (if you're the sole admin).